What are the best ways to use it? (I assume whatever setup I do, I will do twice, once for each key.)
Here are some specific questions, but I really want general advice. I am mostly listing these to demonstrate my general lack of understanding!
- Looking at it with the YubiKey Manager I see it has three applications: OTP, FIDO2, PIV. Do I care?
- Can I use it on my laptop to log into Windows? Will I still need to type in my Windows password or PIN? My goal is to log on to Windows without typing in a password or pin, assuming the YubiKey is inserted. If the key was in my pocket, anyone having only the laptop could not log on.
- How do I set it up for Vanguard?
- What other useful things can I do with it?
I think I can figure out some of this by fiddling around but worry about messing things up and locking myself out permanently.